{"id":321,"date":"2024-11-12T13:10:08","date_gmt":"2024-11-12T12:10:08","guid":{"rendered":"https:\/\/rumex.mendelu.cz\/bezpecnost\/?p=321"},"modified":"2024-11-12T13:10:10","modified_gmt":"2024-11-12T12:10:10","slug":"velky-hack-twitteru-2020-lekce-z-kybernetickeho-utoku-na-slavne-ucty","status":"publish","type":"post","link":"https:\/\/rumex.mendelu.cz\/bezpecnost\/?p=321","title":{"rendered":"Velk\u00fd hack Twitteru 2020: Lekce z kybernetick\u00e9ho \u00fatoku na slavn\u00e9 \u00fa\u010dty"},"content":{"rendered":"\n<p>V \u010dervenci 2020 se spole\u010dnost Twitter stala ter\u010dem jedn\u00e9ho z nejv\u00fdznamn\u011bj\u0161\u00edch kybernetick\u00fdch \u00fatok\u016f ve sv\u00e9 historii. \u00dato\u010dn\u00edci vyu\u017eili metody soci\u00e1ln\u00edho in\u017een\u00fdrstv\u00ed k z\u00edsk\u00e1n\u00ed p\u0159\u00edstupu k intern\u00edm n\u00e1stroj\u016fm spole\u010dnosti, co\u017e jim umo\u017enilo napadnout \u00fa\u010dty slavn\u00fdch osobnost\u00ed a organizac\u00ed.<\/p>\n\n\n\n<p><strong>Chronologie ud\u00e1lost\u00ed:<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>15. \u010dervence 2020:<\/strong> \u00dato\u010dn\u00edci za\u010dali sv\u016fj \u00fatok napaden\u00edm \u00fa\u010dt\u016f velk\u00fdch kryptom\u011bnov\u00fdch burz, jako jsou Binance a Coinbase. Pot\u00e9 z\u00edskali p\u0159\u00edstup k \u00fa\u010dt\u016fm slavn\u00fdch osobnost\u00ed, jako jsou Elon Musk, Bill Gates, Barack Obama, Jeff Bezos a dal\u0161\u00ed. Z t\u011bchto \u00fa\u010dt\u016f byla zve\u0159ejn\u011bna podvodn\u00e1 sd\u011blen\u00ed, ve kter\u00fdch bylo nab\u00edzeno zdvojn\u00e1soben\u00ed \u010d\u00e1stky zaslan\u00e9 na uvedenou bitcoinovou adresu.<\/li>\n\n\n\n<li><strong>16. \u010dervence 2020:<\/strong> Twitter ozn\u00e1mil, \u017ee \u00fatok byl v\u00fdsledkem koordinovan\u00e9ho soci\u00e1ln\u00edho in\u017een\u00fdrstv\u00ed zam\u011b\u0159en\u00e9ho na zam\u011bstnance s p\u0159\u00edstupem k intern\u00edm syst\u00e9m\u016fm. Spole\u010dnost do\u010dasn\u011b omezila mo\u017enost zve\u0159ej\u0148ov\u00e1n\u00ed p\u0159\u00edsp\u011bvk\u016f pro ov\u011b\u0159en\u00e9 \u00fa\u010dty a zah\u00e1jila vy\u0161et\u0159ov\u00e1n\u00ed incidentu. <\/li>\n<\/ul>\n\n\n\n<figure class=\"wp-block-image size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"800\" height=\"533\" src=\"https:\/\/rumex.mendelu.cz\/bezpecnost\/wp-content\/uploads\/2024\/11\/tw-hacked.jpg\" alt=\"\" class=\"wp-image-323\" srcset=\"https:\/\/rumex.mendelu.cz\/bezpecnost\/wp-content\/uploads\/2024\/11\/tw-hacked.jpg 800w, https:\/\/rumex.mendelu.cz\/bezpecnost\/wp-content\/uploads\/2024\/11\/tw-hacked-300x200.jpg 300w, https:\/\/rumex.mendelu.cz\/bezpecnost\/wp-content\/uploads\/2024\/11\/tw-hacked-768x512.jpg 768w\" sizes=\"auto, (max-width: 800px) 100vw, 800px\" \/><\/figure>\n\n\n\n<p><strong>Metody \u00fatoku:<\/strong><\/p>\n\n\n\n<p>\u00dato\u010dn\u00edci pou\u017eili soci\u00e1ln\u00ed in\u017een\u00fdrstv\u00ed, aby p\u0159esv\u011bd\u010dili zam\u011bstnance Twitteru o poskytnut\u00ed p\u0159\u00edstupu k intern\u00edm n\u00e1stroj\u016fm. Pomoc\u00ed t\u011bchto n\u00e1stroj\u016f upravovali nastaven\u00ed \u00fa\u010dt\u016f a zve\u0159ej\u0148ovali podvodn\u00e1 sd\u011blen\u00ed. Podle vy\u0161et\u0159ov\u00e1n\u00ed se \u00fato\u010dn\u00edci spojili se zam\u011bstnanci telefonicky, vyd\u00e1vali se za kolegy a p\u0159im\u011bli je, aby jim poskytli p\u0159ihla\u0161ovac\u00ed \u00fadaje.<\/p>\n\n\n\n<p><strong>D\u016fsledky:<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Finan\u010dn\u00ed ztr\u00e1ty:<\/strong> \u00dato\u010dn\u00edci z\u00edskali p\u0159ibli\u017en\u011b 12,86 bitcoinu (v t\u00e9 dob\u011b p\u0159ibli\u017en\u011b 120 000 USD) od u\u017eivatel\u016f, kte\u0159\u00ed uv\u011b\u0159ili podvodn\u00fdm zpr\u00e1v\u00e1m. <\/li>\n\n\n\n<li><strong>Reputa\u010dn\u00ed rizika:<\/strong> Incident vzbudil obavy ohledn\u011b bezpe\u010dnosti syst\u00e9mu Twitter a ochrany \u00fadaj\u016f u\u017eivatel\u016f.<\/li>\n\n\n\n<li><strong>Pr\u00e1vn\u00ed opat\u0159en\u00ed:<\/strong> V d\u016fsledku vy\u0161et\u0159ov\u00e1n\u00ed byli zat\u010deni t\u0159i lid\u00e9 obvin\u011bn\u00ed z organizace \u00fatoku. Byli obvin\u011bni z podvodu, pran\u00ed \u0161pinav\u00fdch pen\u011bz a neopr\u00e1vn\u011bn\u00e9ho p\u0159\u00edstupu do po\u010d\u00edta\u010dov\u00fdch syst\u00e9m\u016f. <\/li>\n<\/ul>\n\n\n\n<p><strong>Reakce Twitteru:<\/strong><\/p>\n\n\n\n<p>Po incidentu spole\u010dnost pos\u00edlila bezpe\u010dnostn\u00ed opat\u0159en\u00ed, omezila p\u0159\u00edstup k intern\u00edm n\u00e1stroj\u016fm a provedla \u0161kolen\u00ed zam\u011bstnanc\u016f o metod\u00e1ch soci\u00e1ln\u00edho in\u017een\u00fdrstv\u00ed. Twitter tak\u00e9 spolupracoval s org\u00e1ny \u010dinn\u00fdmi v trestn\u00edm \u0159\u00edzen\u00ed na vy\u0161et\u0159ov\u00e1n\u00ed \u00fatoku a prevenci podobn\u00fdch incident\u016f v budoucnu.<\/p>\n\n\n\n<p>Tento incident zd\u016fraznil d\u016fle\u017eitost ochrany p\u0159ed metodami soci\u00e1ln\u00edho in\u017een\u00fdrstv\u00ed a pot\u0159ebu pr\u016fb\u011b\u017en\u00e9ho \u0161kolen\u00ed zam\u011bstnanc\u016f v oblasti kybernetick\u00e9 bezpe\u010dnosti.<\/p>\n\n\n\n<p><\/p>\n\n\n\n<p>Zdroj: <a href=\"https:\/\/en.wikipedia.org\/wiki\/2020_Twitter_account_hijacking\">https:\/\/en.wikipedia.org\/wiki\/2020_Twitter_account_hijacking<\/a>; <a href=\"https:\/\/www.dfs.ny.gov\/Twitter_Report\">https:\/\/www.dfs.ny.gov\/Twitter_Report<\/a><\/p>\n\n\n\n<p><\/p>\n","protected":false},"excerpt":{"rendered":"<p>V \u010dervenci 2020 se spole\u010dnost Twitter stala ter\u010dem jedn\u00e9ho z nejv\u00fdznamn\u011bj\u0161\u00edch kybernetick\u00fdch \u00fatok\u016f ve sv\u00e9 historii. \u00dato\u010dn\u00edci vyu\u017eili metody soci\u00e1ln\u00edho in\u017een\u00fdrstv\u00ed k z\u00edsk\u00e1n\u00ed p\u0159\u00edstupu k intern\u00edm n\u00e1stroj\u016fm spole\u010dnosti, co\u017e jim umo\u017enilo napadnout \u00fa\u010dty slavn\u00fdch osobnost\u00ed a organizac\u00ed. Chronologie ud\u00e1lost\u00ed: Metody <a href=\"https:\/\/rumex.mendelu.cz\/bezpecnost\/?p=321\"> Read more&#8230;<\/a><\/p>\n","protected":false},"author":2,"featured_media":322,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"status","meta":{"footnotes":""},"categories":[20],"tags":[],"class_list":["post-321","post","type-post","status-publish","format-status","has-post-thumbnail","hentry","category-prispevky","post_format-post-format-status"],"_links":{"self":[{"href":"https:\/\/rumex.mendelu.cz\/bezpecnost\/index.php?rest_route=\/wp\/v2\/posts\/321","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/rumex.mendelu.cz\/bezpecnost\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/rumex.mendelu.cz\/bezpecnost\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/rumex.mendelu.cz\/bezpecnost\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/rumex.mendelu.cz\/bezpecnost\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=321"}],"version-history":[{"count":1,"href":"https:\/\/rumex.mendelu.cz\/bezpecnost\/index.php?rest_route=\/wp\/v2\/posts\/321\/revisions"}],"predecessor-version":[{"id":324,"href":"https:\/\/rumex.mendelu.cz\/bezpecnost\/index.php?rest_route=\/wp\/v2\/posts\/321\/revisions\/324"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/rumex.mendelu.cz\/bezpecnost\/index.php?rest_route=\/wp\/v2\/media\/322"}],"wp:attachment":[{"href":"https:\/\/rumex.mendelu.cz\/bezpecnost\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=321"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/rumex.mendelu.cz\/bezpecnost\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=321"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/rumex.mendelu.cz\/bezpecnost\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=321"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}